37 matches found
ROOT-OS-DEBIAN-11-CVE-2026-23395 CVE-2026-23395 in rootio-linux - Patched by Root
Root has patched CVE-2026-23395 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-23395 CVE-2026-23395 in rootio-linux - Patched by Root
Root has patched CVE-2026-23395 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-23395 CVE-2026-23395 in rootio-linux - Patched by Root
Root has patched CVE-2026-23395 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2026-23395 CVE-2026-23395 in rootio-linux - Patched by Root
Root has patched CVE-2026-23395 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2404-CVE-2026-23395 CVE-2026-23395 in rootio-linux - Patched by Root
Root has patched CVE-2026-23395 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
BELL-CVE-2026-23395
Bulletin has no description...
CVE-2026-23395
creationtimestamp| type| source ---|---|--- 2026-03-25 14:24:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhvc5miczp22 2026-03-29 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0376/ 2026-04-02 11:20:24+00:00| published-proof-of-concept|...
Linux Distros Unpatched Vulnerability : CVE-2026-23395
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause...
Linux Distros Unpatched Vulnerability : CVE-2022-23395
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jQuery Cookie 1.4.1 is affected by prototype pollution, which can lead to DOM cross-site scripting XSS. CVE-2022-23395 Note that Nessus relies on the presence o...
Fedora: Security Advisory (FEDORA-2025-653690f2f7)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-f055a0d751)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-23395
Screen 5.0.0 when it runs with setuid-root privileges does not drop privileges while operating on a user supplied path. This allows unprivileged users to create files in arbitrary locations with root ownership, the invoking user's real group ownership and file mode 0644. All data written to the...
CVE-2025-23395
Screen 5.0.0 when it runs with setuid-root privileges does not drop privileges while operating on a user supplied path. This allows unprivileged users to create files in arbitrary locations with root ownership, the invoking user's real group ownership and file mode 0644. All data written to the...
CVE-2025-23395
Screen 5.0.0 when it runs with setuid-root privileges does not drop privileges while operating on a user supplied path. This allows unprivileged users to create files in arbitrary locations with root ownership, the invoking user's real group ownership and file mode 0644. All data written to the...
CVE-2025-23395 Local root exploit via `logfile_reopen()` in screen 5.0.0 with setuid-root bit set
Screen 5.0.0 when it runs with setuid-root privileges does not drop privileges while operating on a user supplied path. This allows unprivileged users to create files in arbitrary locations with root ownership, the invoking user's real group ownership and file mode 0644. All data written to the...
CVE-2025-23395
CVE-2025-23395 affects Screen 5.0.0 when run with setuid-root privileges. The root cause is that logfile_reopen() does not drop privileges while operating on a user-supplied path, allowing an unprivileged user to create files in arbitrary locations with root ownership, the invoking user’s real gr...
CVE-2025-23395
Screen 5.0.0 when it runs with setuid-root privileges does not drop privileges while operating on a user supplied path. This allows unprivileged users to create files in arbitrary locations with root ownership, the invoking user's real group ownership and file mode 0644. All data written to the...
CVE-2025-23395
A flaw was found in Screen. When running with setuid-root privileged, the logfilereopen function does not drop privileges while operating on a user-supplied path. This vulnerability allows an unprivileged user to create files in arbitrary locations with root ownership. Mitigation No mitigation is...
CVE-2025-23395
creationtimestamp| type| source ---|---|--- 2025-05-12 17:00:00+00:00| seen| https://security.opensuse.org/2025/05/12/screen-security-issues.html3b-tty-hijacking-while-attaching-to-a-multi-user-session-cve-2025-46802 2025-05-12 17:24:36+00:00| seen|...
CVE-2025-23395
Screen 5.0.0 when it runs with setuid-root privileges does not drop privileges while operating on a user supplied path. This allows unprivileged users to create files in arbitrary locations with root ownership, the invoking user's real group ownership and file mode 0644. All data written to the...